tar (node-tar) is vulnerable to privilege escalation. The vulnerability exists due to insufficient absolute path sanitization.
cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
github.com/advisories/GHSA-3jfq-g458-7qm9
github.com/npm/node-tar/commit/1f036ca23f64a547bdd6c79c1a44bc62e8115da4
github.com/npm/node-tar/security/advisories/GHSA-3jfq-g458-7qm9
www.npmjs.com/advisories/1770
www.npmjs.com/package/tar
www.oracle.com/security-alerts/cpuoct2021.html